Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/bb01ce-b9b0-4b15-9400-394f50d4ba38/1/g1xJ__bg1Td9jOjo3094AIBs_bQ.roa
File: g1xJ__bg1Td9jOjo3094AIBs_bQ.roa (raw, json)
Hash identifier: jcuBdMDPe98LvBJkbPaMxjrjxPwBYT6HMRXyRb6Uyms=
Subject key identifier: 83:5C:49:FF:F6:E0:D5:37:7D:8C:E8:E8:DF:4F:78:00:80:6C:FD:B4
Certificate issuer: /CN=27b24fd66efe6dc5c3aab2e2e651a4e207fe62e7
Certificate serial: 01ABD03B
Authority key identifier: 27:B2:4F:D6:6E:FE:6D:C5:C3:AA:B2:E2:E6:51:A4:E2:07:FE:62:E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J7JP1m7-bcXDqrLi5lGk4gf-Yuc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/bb01ce-b9b0-4b15-9400-394f50d4ba38/1/g1xJ__bg1Td9jOjo3094AIBs_bQ.roa
Signing time: Sat 01 Jan 2022 15:03:37 +0000
ROA not before: Sat 01 Jan 2022 15:03:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25019
IP address blocks: 185.51.123.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 28037179 (0x1abd03b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=27b24fd66efe6dc5c3aab2e2e651a4e207fe62e7
Validity
Not Before: Jan 1 15:03:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=835c49fff6e0d5377d8ce8e8df4f7800806cfdb4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:ce:b3:88:f0:99:a3:cf:8c:77:2f:21:98:0a:
ac:e3:40:0b:dc:fd:0f:e1:70:fb:b6:27:8f:c4:8c:
24:85:61:ca:6c:2b:9f:51:9e:45:5c:80:45:43:da:
3b:a8:d1:da:c5:19:b1:f9:29:68:71:d1:19:0b:0a:
68:72:73:22:c4:4c:57:6e:55:b3:c7:7d:cd:72:38:
58:5d:35:f6:bc:bc:96:a7:32:17:6e:40:41:ce:34:
13:e4:be:bd:49:a7:06:6c:33:e2:90:3e:51:8a:b8:
4d:28:c5:4d:15:9b:db:bf:71:88:c7:2d:42:c0:5f:
a9:a7:51:94:1e:d3:f4:89:0c:b5:62:84:71:13:c7:
7b:cb:d8:09:e8:18:67:16:27:89:6b:bc:73:d6:07:
19:30:8c:43:0f:be:de:fb:4d:72:e2:13:66:33:d9:
12:d6:b1:82:e2:6a:92:74:13:aa:27:3b:db:52:bf:
d3:07:19:bb:31:e9:77:9d:8e:14:c4:1b:20:4b:7c:
c5:98:e5:87:87:60:ea:75:bf:12:0b:0d:c2:a2:3a:
a1:a2:78:ed:b9:81:cc:3d:0d:de:a6:78:0c:86:85:
f4:07:d3:be:47:9e:e0:df:79:a8:59:81:53:cb:5e:
51:b5:79:dc:c3:58:3b:49:e2:8c:b4:c7:20:f0:13:
38:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:5C:49:FF:F6:E0:D5:37:7D:8C:E8:E8:DF:4F:78:00:80:6C:FD:B4
X509v3 Authority Key Identifier:
keyid:27:B2:4F:D6:6E:FE:6D:C5:C3:AA:B2:E2:E6:51:A4:E2:07:FE:62:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J7JP1m7-bcXDqrLi5lGk4gf-Yuc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/bb01ce-b9b0-4b15-9400-394f50d4ba38/1/g1xJ__bg1Td9jOjo3094AIBs_bQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/bb01ce-b9b0-4b15-9400-394f50d4ba38/1/J7JP1m7-bcXDqrLi5lGk4gf-Yuc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.51.123.0/24
Signature Algorithm: sha256WithRSAEncryption
3e:c6:82:87:45:48:00:7d:89:2c:9f:62:fc:df:ca:8b:8a:6e:
c5:05:f1:01:74:c2:fc:70:e0:b4:0c:ba:3e:f6:40:ca:d9:4d:
34:c3:7d:9c:df:fb:40:8d:28:0a:22:12:f4:91:66:aa:ff:eb:
71:0f:9b:75:01:c7:4a:06:79:5f:e4:20:13:f4:11:b7:20:e3:
22:2c:a3:49:f3:8d:df:71:da:af:47:88:61:49:39:98:5c:07:
0e:2d:0d:45:e2:68:96:7f:91:23:bf:bb:74:f8:56:ac:25:07:
5a:f4:54:aa:23:1c:bd:6a:b7:ac:7a:c7:a0:44:9a:79:f0:ed:
89:b8:aa:83:f7:2f:65:2b:18:e6:60:38:88:b1:ff:db:bd:82:
bc:1b:9d:14:21:7e:78:c3:11:68:35:f9:8c:6f:54:22:1c:00:
37:33:6e:e3:c2:83:43:c8:c4:5e:50:24:1b:ae:5a:c6:4f:c7:
43:d1:d8:c4:20:2c:44:05:bf:56:66:a0:b4:52:75:29:12:4c:
3e:a3:91:8b:6e:df:14:d9:c9:16:74:d0:1e:8a:32:c8:f6:15:
8d:56:37:8a:8f:9c:8e:09:90:95:2a:ed:f3:55:2d:dd:d3:a7:
83:d3:b8:b0:36:49:d1:e7:e3:5f:c0:0b:96:b1:09:64:9a:f9:
88:70:5e:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:07 2024 by rpki-client on console-fra.rpki-client.org